NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir()

[ Upstream commit f64ea4af43161bb86ffc77e6aeb5bcf5c3229df0 ] It's only current caller already length-checks the string, but let's be safe. Fixes: 0964a3d3f1aa ("[PATCH] knfsd: nfsd4 reboot dirname fix") Reviewed-by: Jeff Layton <jlayton@kernel.org> Signed-off-by: Chuck Lever <chuck.lever@oracle.com> Signed-off-by: Sasha Levin <sashal@kernel.org>
author: Chuck Lever <chuck.lever@oracle.com> 2024-10-17 11:03:56 -0400
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2024-12-05 13:53:53 +0100
commit: 7fb32f3e47381dda25714ebf07eeedeaf581e610 (patch)
tree: d46f973bf277c9e99386483aa3e768e62bf5f7ca
parent: 03178cd8f67227015debb700123987fe96275cd1 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/fs/nfsd/nfs4recover.c b/fs/nfsd/nfs4recover.c
index 69a3a84e159e..d92c65088831 100644
--- a/fs/nfsd/nfs4recover.c
+++ b/fs/nfsd/nfs4recover.c
@@ -659,7 +659,8 @@ nfs4_reset_recoverydir(char *recdir)
 		return status;
 	status = -ENOTDIR;
 	if (d_is_dir(path.dentry)) {
-		strcpy(user_recovery_dirname, recdir);
+		strscpy(user_recovery_dirname, recdir,
+			sizeof(user_recovery_dirname));
 		status = 0;
 	}
 	path_put(&path);
author	Chuck Lever <chuck.lever@oracle.com>	2024-10-17 11:03:56 -0400
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2024-12-05 13:53:53 +0100
commit	7fb32f3e47381dda25714ebf07eeedeaf581e610 (patch)
tree	d46f973bf277c9e99386483aa3e768e62bf5f7ca
parent	03178cd8f67227015debb700123987fe96275cd1 (diff)